Unrated severityNVD Advisory· Published Oct 16, 2023· Updated Apr 23, 2025
Active Directory Integration < 4.1.10 - Unauthenticated Log Disclosure
CVE-2023-5003
Description
The Active Directory Integration / LDAP Integration WordPress plugin before 4.1.10 stores sensitive LDAP logs in a buffer file when an administrator wants to export said logs. Unfortunately, this log file is never removed, and remains accessible to any users knowing the URL to do so.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- WordPress/Active Directory Integration / LDAP Integrationdescription
- Range: <4.1.10
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/91f4e500-71f3-4ef6-9cc7-24a7c12a5748mitreexploitvdb-entrytechnical-description
News mentions
0No linked articles in our index yet.